[Secure-testing-commits] r45781 - in data: CVE DLA

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-10-31 05:50:33 +0000 (Mon, 31 Oct 2016)
New Revision: 45781

Modified:
   data/CVE/list
   data/DLA/list
Log:
CVE-2016-9105/qemu assigned

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-10-31 05:49:12 UTC (rev 45780)
+++ data/CVE/list	2016-10-31 05:50:33 UTC (rev 45781)
@@ -16,15 +16,14 @@
 	NOTE: Xen switched to qemu-system in 4.4.0-1
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02623.html
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/28/4
-CVE-2016-XXXX [memory leakage in v9fs_link]
+CVE-2016-9105 [memory leakage in v9fs_link]
 	- qemu <unfixed> (bug #842463)
 	- qemu-kvm <removed>
-	[wheezy] - qemu-kvm 1.1.2+dfsg-6+deb7u18
-	NOTE: Workaround entry for DLA-689-1 until CVE is assigned
 	- xen 4.4.0-1
 	NOTE: Xen switched to qemu-system in 4.4.0-1
 	NOTE: https://lists.gnu.org/archive/html/qemu-devel/2016-10/msg02608.html
-	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/28/3
+	NOTE: http://www.openwall.com/lists/oss-security/2016/10/28/3
+	NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=4c1586787ff43c9acd18a56c12d720e3e6be9f7c
 CVE-2016-9104 [9pfs: integer overflow leading to OOB access]
 	- qemu <unfixed> (bug #842463)
 	- qemu-kvm <removed>

Modified: data/DLA/list
===================================================================
--- data/DLA/list	2016-10-31 05:49:12 UTC (rev 45780)
+++ data/DLA/list	2016-10-31 05:50:33 UTC (rev 45781)
@@ -1,5 +1,5 @@
 [30 Oct 2016] DLA-689-1 qemu-kvm - security update
-	{CVE-2016-7909 CVE-2016-8909 CVE-2016-8910 CVE-2016-9101 CVE-2016-9102 CVE-2016-9103 CVE-2016-9104}
+	{CVE-2016-7909 CVE-2016-8909 CVE-2016-8910 CVE-2016-9101 CVE-2016-9102 CVE-2016-9103 CVE-2016-9104 CVE-2016-9105}
 	[wheezy] - qemu-kvm 1.1.2+dfsg-6+deb7u18
 [28 Oct 2016] DLA-680-2 bash - version number correction
 	[wheezy] - bash 4.2+dfsg-0.1+deb7u4